Vulnerabilities (CVE)

Filtered by vendor Megafeis Subscribe
Filtered by product Bofei Dbd\+
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-45637 1 Megafeis 1 Bofei Dbd\+ 2024-11-21 N/A 9.8 CRITICAL
An insecure password reset issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 service via insecure expiry mechanism.
CVE-2022-45636 1 Megafeis 1 Bofei Dbd\+ 2024-11-21 N/A 8.1 HIGH
An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to unlock model(s) without authorization via arbitrary API requests.
CVE-2022-45635 1 Megafeis 1 Bofei Dbd\+ 2024-11-21 N/A 7.5 HIGH
An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to gain access to sensitive account information via insecure password policy.